Re: [ED-SEC] Policy for Domain Administration

[Chad McDonald <chad.mcdonald () GCSU EDU>]

Do you mean IP's hosted within your IP range that have DNS entries other
than *.brown.edu?


Thanks,
Chad McDonald, CISSP
Chief Information Security Officer
Georgia College & State University
478.445.4473  Office
478.454.8250 Cell
478.445.1202 Fax

-----Original Message-----
From: The EDUCAUSE Security Discussion Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Phil Benchoff
Sent: Thursday, May 26, 2005 1:17 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] [ED-SEC] Policy for Domain Administration

You have no way to detect domain names that resolve to your addresses.
It would be a fairly pointless policy.  You can refuse to reverse one of
your addresses to anything but *.brown.edu.  That makes it a little harder
for folks to misrepresent things.  If your worry is about acceptable use,
the domain name doesn't have much to do with it anyway.

Phil

On Thu, May 26, 2005 at 12:57:36PM -0400, Sadler, Connie wrote:
> Does anyone have policy for the administration of domain names at your
site? For example, here at Brown, we are considering a policy requiring
"registration" for domains that sit on our address space but that will not
have a *.brown.edu address. Has anyone gone down this road? Any wisdom on
this?
> Thanks much!
>
> Connie J. Sadler, CM, CISSP, CISM, GIAC GSLC Director, IT Security,
> Brown University